| Message ID | 20170921154208.19079-1-peter@korsgaard.com |
|---|---|
| State | Accepted |
| Commit | 6f4d4ae57e3b431e8ece83d698e1326e5d8af6f0 |
| Headers | show |
| Series | [PATCH-2017.02.x] package/samba4: security bump to version 4.5.14 | expand |
>>>>> "Peter" == Peter Korsgaard <peter@korsgaard.com> writes: > Release notes: > https://www.samba.org/samba/history/samba-4.5.14.html > Fixes > - CVE-2017-12150 (SMB1/2/3 connections may not require signing where > they should) > - CVE-2017-12151 (SMB3 connections don't keep encryption across DFS > redirects) > - CVE-2017-12163 (Server memory information leak over SMB1) > Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Committed to 2017.02.x, thanks.
diff --git a/package/samba4/samba4.hash b/package/samba4/samba4.hash index 0d8b111082..847be87c1c 100644 --- a/package/samba4/samba4.hash +++ b/package/samba4/samba4.hash @@ -1,2 +1,2 @@ # Locally calculated -sha256 5fc4762d2259469bfb0067c10f77378cb720f2ebdaf2f37b5ca1918dbe84d04d samba-4.5.13.tar.gz +sha256 15dc04fd2b19081daf1118318f43f88ef7260b3fc6e4f86ee7c7913bb7c92ed9 samba-4.5.14.tar.gz diff --git a/package/samba4/samba4.mk b/package/samba4/samba4.mk index 08fa4008d6..e4778d0a5d 100644 --- a/package/samba4/samba4.mk +++ b/package/samba4/samba4.mk @@ -4,7 +4,7 @@ # ################################################################################ -SAMBA4_VERSION = 4.5.13 +SAMBA4_VERSION = 4.5.14 SAMBA4_SITE = https://download.samba.org/pub/samba/stable SAMBA4_SOURCE = samba-$(SAMBA4_VERSION).tar.gz SAMBA4_INSTALL_STAGING = YES
Release notes: https://www.samba.org/samba/history/samba-4.5.14.html Fixes - CVE-2017-12150 (SMB1/2/3 connections may not require signing where they should) - CVE-2017-12151 (SMB3 connections don't keep encryption across DFS redirects) - CVE-2017-12163 (Server memory information leak over SMB1) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> --- package/samba4/samba4.hash | 2 +- package/samba4/samba4.mk | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-)